|
RSA has announced that a nation state is behind an attack made on its servers in which information related to the company's SecurID two-factor authentication products were stolen, as reported on the website of Naked Security Sophos . During the RSA Security Conference held in London, RSA's Chairman Art Coviello talked about the high profile attack that hit the headlines around the world:
"There were two individual groups from one nation state, one supporting the other. One was very visible and one less so.. We've not attributed it to a particular nation state although we're very confident that with the skill, sophistication and resources involved it could only have been a nation state."
It has to be noted that RSA was victim of a targeted malware attack. The employees of RSA received an email with a file attached to it. The email was designed to entice users to open the attachment containing a malicious Flash payload. The file exploited an Adobe zero-day vulnerability that downloaded a remote access Trojan horse known as Poison Ivy to the computer. The Trojan horse allowed hackers to steal information by getting access into RSA's network infrastructure. In addition, this attack enabled hackers to conduct another attack on a main US Military Contractor.
For
more information, visit the following link:
http://nakedsecurity.sophos.com/2011/10/11/rsa-blames-nation-state-attack/
Source:
Naked Security Sophos
http://nakedsecurity.sophos.com
Team Cymru
http://www.team-cymru.org/News/
Disclaimer The information provided herein is on "as is" basis, without warranty of any kind.
|
